Privacy Policy

1. Information Collection and Storage

We collect information provided directly by the operator (e.g., name, email, billing address) and technical metadata transmitted by the Companion Sentinel Agent (e.g., OS version, port status, service list). We do not collect or store application-level data, database contents, or user-sensitive files.

2. Legal Basis for Processing (GDPR/POPIA)

Under GDPR and POPIA, we process information based on the following legal grounds:

• Contractual Necessity: To provide security auditing services.
• Legitimate Interest: To monitor platform health and prevent fraud.
• Consent: For optional technical communication or newsletters.

3. Data Transmission and Security Standard

All data transmitted between your nodes and our dashboard is encrypted via TLS 1.3. We do not store SSH keys or root passwords.

• Encryption at Rest: Sensitive credentials (AI Keys) are locked using AES-256-GCM.
• Zero-Knowledge: Personal Access Tokens (PAT) are stored only as secure SHA-256 hashes.

4. Operator Rights and Participation

Operators have the right to:

• Access: Request a copy of the stored telemetry data.
• Correction: Request the update of inaccurate profile data.
• Erasure: Request the permanent deletion of an account.
• Portability: Request an export of server node forensics.

5. Data Retention and Sovereignty

Your data is persisted only for the duration of your active account. Data is processed and stored on secure infrastructure located in the European Union (EU) and other international jurisdictions. By using the service, you consent to this international data processing, handled in accordance with GDPR and POPIA standards.

6. Technical Cookies

We use essential technical cookies to manage secure sessions. These do not track operators across third-party sites and are required for the Mission Control dashboard.

7. Compliance Contact

For data removal requests or to exercise your legal rights, please contact our Information Officer at [email protected].